Use cases for Defender Management

Last modified by Sabrina V. on 2024/10/23 06:23

Below are two possible use cases for Defender Management:

ASR rules: Event IDs 1121 and 1122 occur in conjunction with an lsass.exe and block the operation
VirTool: Win32/DefenderTamperingRestore triggers a threat alert

© Aagon GmbH 2024

Impressum | Datenschutz

Besuchen Sie unsere neue Aagon-Community